Results 1 to 13 of 13

Thread: Prove me right/wrong ;]

  1. #1

    Question Prove me right/wrong ;]

    hello,
    it's my first post here so hello everyone ;]
    My situation:
    -I have a computer with LPT HASP4 (-memo if I remember properly)
    -Program that uses HASP is "windows7like" - same DVD different keys (HASP's in this matter)
    -HASP has written S/N in it and same one needs to be written in PC (ini file)
    -I'm able to edit S/N, and I have passwords for HASP's (about 6)
    -My question is:
    If these hasps are to be used with same program but different version for a machine (like pro ultimate home etc.), do I have to change entire HASP (I've read bout two parts of HASP memory - easy changeable (haspedit) and second one which is tough to change - or just the data changeable by HASPEDIT?

  2. #2
    I've never seen a HASP protected application locked or controlled via a specific HaspID (I'm assuming thats what you mean by S/N). It is non-trivial to change (i.e. there isn't a nice Aladdin application that allows you to change it) & I doubt you actually need to.

    HaspEdit allows you access to the read/write area of the HASP memory, this might be used to determine the various levels of the software.

    If you have 6 separate dongles (each with different HASP passwords), my guess is it will be these that determine the version level (Scanvec springs to my mind as being one such example), if they are all the same password, its probably the contents of the dongles memory that is the determining factor.

    Regards, CrackZ.

  3. #3
    S/N is serial number of the PC. Which is written in HASP memory (haspedit'able) as they have same passwords. Today I'm gonna have access to HASP's and we'll see.

    EDIT: I'm able to copy memory data between dongles to create working one. Is it possible to log to/from which file data from/to hasp comes?
    I searched through ini files of the app (S/N is on one of those so that's why ini files) but with no result.
    Will DongleKnack or haSploGer tool do the job? I need to determine which part of the hasp memory I have to edit and what to type there in order to create new dongle - the one that was supposed to work doesn't, so I'm not sure if correcting S/N will do the job.
    To check that I'd need to go a long way, so now I'm able only to see how a same pc (different S/N etc. but software is same) behaves to prevent waste of time and gas.
    Last edited by rat167; January 6th, 2011 at 10:39.

  4. #4
    You are out of your depth. Sorry. (Please take this in the way its intended and not as an insult).

    You have identified it being the dongles memory as controlling the various 'versions'.

    You have 2 choices;

    i). Debug the application and understand the memory contents.
    or ii). Fuzz the dongle memory by changing small bits at a time hoping to stumble upon the answer.

    Option i). requires you to learn a fair few skills and option ii). will be tedious beyond belief. I suppose an option iii). might be to get some sort of working dump for the application from *somewhere*, but no automated tool is going to help you here.

    Regards, CrackZ.

  5. #5
    I know I am out of my depth that's why I'm here looking for "magic answer" ;/ .
    Thing about option two is:
    when I edit the data that I don't know whats for, nothing happens (I changed everything on the dongle except S/N and one thing that determines which functions are to be used, and everything was ok).

    But when they are all wiped out it's not working - working for few hours to see which thing does what is not for me coz I need to find that data in soft files and I don't know what I'm exactly changing (dates to be specific and some sequences - what do they mean I don't know, they may be dates of overhauls (internet dict. I never knew this word), but what for I have no idea, maybe just to log them - so it's pointless.

    The app is written simply, without sophisticated encryptions because main(only?) security is the dongle ;] I don't have to decode/decompile or do anything in order to see whats in there. Most of settings etc. is stored in ini files but I have no idea where to look.

    So... I believe that I'm able to learn some stuff, question how deep goes the rabbit hole?
    I'll check the tools I obtained in order to see if they can tell me anything useful. To be honest I just need to get one thing, and I know where it is on a working dongle, I just don't know where to look to see what should be written into dongle.
    Rest of how everything works is my endless curiosity ;]
    Last edited by rat167; January 6th, 2011 at 19:53.

  6. #6

    As Above

    Let me understand this:

    1. You have got 6 dongles for different flavours of the same software (the software changes its flavours based on the dongle you have inserted)

    2. You know that the dongle contents are not unreachable. You can edit them as you please. (that's what I got from your LAST post)

    3. Not only are you able to get the contents and edit them as you please, you tried editing the serial number and some content on 1 dongle, to make it look like actually ANOTHER dongle was attached. Thereby, ensuring that the software assumed you have plugged the OTHER dongle and gave you relative functionality, whereas in reality its STILL the old dongle, albeit with changed S/N and other something.

    Now, you mentioned you don't know WHERE to look to see what should be written on the dongle. My question is, if everything is working OK after changing the serial num on the dongle, the WHY do you need to know this?

    Is there some protection that snaps later?

    Maybe Crackz got the question correctly, but I, unfortunately, am having a TOUGH time interpreting your problem.

    Could you, perhaps, clarify a bit more, with example?

    Have Phuh
    Blame Microsoft, get l337 !!

  7. #7
    1. I have 6 dongles.
    2. Each dongle has specific data (S/N etc.) to run on machine with specific S/N
    ex. S/N "abc" fits machine A, S/N "def" fits machine B.
    3. I can make any dongle fit machine A by copying memory from dongleA to any dongle.
    4. I need to see where on the machine is value other than S/N and other than value that determines SOME functions of the software (beacuse I know where these are), let's call that other data S/N2, S/N2 is crucial for the software to start.
    5. There is data on dongle besides S/N and S/N2 that I don't know what it is for. That data is editable but not deleteable (these are dates with part of the S/N to be specific) - machine works when I edit them but doesn't when I delete them.
    6. I need to see in which file S/N2 is stored to be able to see it on the other machine in order to create a working dongle for machineB (see point below).
    7. So: I have machineA with dongleA, machineB with a dongle that didn't work, it had wrong S/N and I assume that S/N2 is incorrect too.
    8. Point 4. is what I need.
    I hope that now everything is clear ;]

  8. #8

    As Above

    Why can you not use FILEMON to monitor which files are getting accessed? Of course, I am assuming that if Point 6 is accomplished, it will resolve Point 4 also.

    You can successively filter it then based on your criteria.

    Or is there something else I am not able to catch?

    Have Phun
    Blame Microsoft, get l337 !!

  9. #9
    That's right, except that these machines have custom win95 (I forget to mention that) and non of the tools that I tried to use to monitor LPT port started to run. So that may be my other problem... Program would have to be absolutely independent, self-sufficient ;/
    I was able to pinpoint data on dongle memo that are used by software.
    S/N S/N2 and one other group that I know what it does. Like I said I don't know what S/N2 does and where it comes from.
    Is there any tool that fill my requirements?

  10. #10

    As Above

    Hope you have tried this:

    http://technet.microsoft.com/en-us/sysinternals/bb896644

    Portmon by Mark Russinovich

    Have PHun
    Blame Microsoft, get l337 !!

  11. #11
    Thanks, it worked but with no result for me. Like CrackZ said I'm out of my depth. Thanks again for help and time ;]

  12. #12
    Interesting topic, but I would like to say that the serial number on the machine may not be stored in a file, it may be generated each time the software is run by getting information about the computer (amount of ram, hard drive serial number, processor specs, network card MAC, etc).

    If this is so, then you would need to crack the exe to work on all computers. How were the LPT hasps S/N generated and saved in the first place?

  13. #13
    It isn't. I can create new system (on either machine), put serial in the file, in the dongle and it will work on any hardware ;]

Similar Threads

  1. what's wrong with my HIEW32?
    By oep in forum The Newbie Forum
    Replies: 10
    Last Post: May 23rd, 2005, 06:10
  2. What's wrong with my i5comp?
    By crazysjf in forum The Newbie Forum
    Replies: 3
    Last Post: May 1st, 2005, 06:33
  3. What am I doing wrong? Concerning Run trace.
    By Mind in forum OllyDbg Support Forums
    Replies: 4
    Last Post: March 12th, 2005, 11:56
  4. OK - What am I doing wrong (CMDLINE)
    By bboitano in forum OllyDbg Support Forums
    Replies: 2
    Last Post: November 5th, 2003, 02:47
  5. Where am I goin wrong?
    By Scally in forum Malware Analysis and Unpacking Forum
    Replies: 1
    Last Post: September 9th, 2001, 09:05

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •